CVSS 3.1 Score 7.3 of 10 (high)


Published Jun 27, 2024
CWE ID 434


CVE-2024-6373 is a critical vulnerability that has been found in itsourcecode Online Food Ordering System up to version 1.0. The vulnerability is located in the /addproduct.php file and allows for unrestricted upload when manipulating the argument "photo". This vulnerability can be exploited remotely, posing a significant risk to organizations using this system. The exploit has been disclosed publicly, increasing the likelihood of it being used maliciously. It is recommended to apply remediation measures promptly to mitigate the potential impact of this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.


Prioritize, Pinpoint, and Act to Prevent Vulnerability Exploits with Recorded Future

Note: This is just a basic overview providing quick insights into CVE-2024-6373 information. Gain full access to comprehensive CVE data, third party vulnerabilities, compromised credentials and more with Recorded Future
  • Gain complete coverage of your cyber, third party, and physical attack surface
  • Proactively mitigate threats before they turn into costly attacks
  • Make fast, effective, data-driven decisions